Privacy Policy

PYMES CAPITAL INC., commercially known as PYMES CAPITAL (hereinafter “PYMES”), domiciled at 400 NW 7th Ave. #14310 FT. Lauderdale, FL 33311, and with the Internet portal https://pymescapital.com.mx/es/, is responsible for the use and protection of your personal data and/or sensitive personal data, and in this regard we inform you of the following:

PYMES informs you that a Personal Data Protection Delegate has been appointed, called the “Data Privacy Officer” and who is in charge of supervising and executing the Data Privacy Policy of PYMES.

This Privacy Notice is prepared in compliance with the legal provisions on the protection of personal data of the Federal Law on Protection of Personal Data Held by Private Parties (LFPDPPP), its Regulations and the Privacy Notice Guidelines issued by the National Institute of Transparency, Access to Information and Protection of Personal Data (INAI).

For SMEs, the security of your personal data is very important, so we have technological, physical, administrative, and legal mechanisms to protect and safeguard your personal data, as well as to prevent damage, loss, destruction, theft, misplacement, alteration and any unauthorized processing thereof.

PYMES makes this Privacy Notice available to you, to inform you of the way in which we collect, transfer, and use your confidential information, and it is available on our website.

The personal data that PYMES collects from the client for the provision of the service and its purposes are the following:

a. When you visit our Site: Our cookie policy explains what data we collect from you and what we do with it when you browse our Site (for example, your IP address).

b. When you register on our Site:

1. What data we collect: When you register on our Site, we will collect your username, country of business and email address.
2. Why we need this data: We will need your username in order to authenticate your user account so that you can benefit from our Services. We will need your email address to send you an activation link to your profile so that you can receive business documents and network requests. We will also need your email address in case you forget your password or wish to receive emails from us with news about our services or changes to any of our policies or terms and conditions. Your IP address is logged by us so that we can prevent any spam, fraud or abuse of our Site. We will store this data only for as long as it is necessary for the purposes of the Services, unless we are required, for legal reasons or in exceptional circumstances, to retain this data for an extended period.
3. How we use this data: We will not share your login details (your username, email address, password and IP address) with anyone except in the circumstances mentioned in the Transfer of Personal Data section.
4. From time to time we may send you news, updates and sales offers by email, which you can easily opt out of receiving by clicking “unsubscribe” in the relevant email.

c. When you contact us or submit comments on our Site:

1. If you submit comments on our Site or contact us for any reason, we may store these communications for as long as necessary in order to improve the Services we offer, unless we are required to do so for legal or legal reasons. In exceptional circumstances, retain this information for an extended period.

d. To establish a possible business relationship with you:

1. In the case of data requested to establish a possible commercial relationship with you, we will use said data for the following purposes, which are necessary for the service you request:

• Evaluation to determine if it will be possible to establish a commercial relationship;
• Purchase of products or provision of services from SMEs;
• Investigation of commercial and supplier relationships and references;
• Determination of a credit term and limit, if applicable;
• Definition of commercial conditions; and
• Evaluation to determine if it is possible to establish a professional and commercial relationship.
• Complaints follow-up.
• For any other compatible or analogous purpose.

Additionally, we will use your personal information for the following secondary purposes that are not necessary for the requested service, but that allow and facilitate us to provide you with better service:

• Delivery of promotional material from SMEs or business partners of SMEs;
• Service quality evaluations.
  
  If you do not want your personal data to be processed for these additional purposes, you can present your letter from this moment via email [email protected], stating the above.

What personal and/or sensitive data will we use for these purposes?

For the purposes of this privacy notice, personal data will be understood as any information concerning an identified or identifiable natural person, for example, identification data, contact data and property or financial data, among others, and sensitive personal data means those data Personal data that affects the intimate sphere of its owner, particularly those data that may reveal aspects such as racial or ethnic origin, present and future health status, genetic information, religious, philosophical and moral beliefs, union membership and political opinions are considered sensitive.

To carry out the purposes described in this privacy notice, we will use the following personal data and/or sensitive personal data:

I. Possible Client:
Personal information:
– Identification data
– Contact information
– Asset and/or financial data

II. Supplier:
Personal information:
– Identification data
– Contact information
– Labor data
– Nationality or origin data
– Asset and/or financial data

III. General Public:
Personal information:
– Identification data
– Contact information

IV. Visitors on the web:
– Identification data
– Contact information

Payments:

1. Our Site operates mainly free of charge, however, there are some services (for example, applications) that you can purchase. If you choose to pay for any of our Services, we will direct you to pay through a third-party site. We currently use PayPal as a third-party payment provider, but from time to time we may select a different third-party payment provider.

2. What data we collect: The third-party site will provide us, and we will then store, the date you made the payment and the date your account will expire with the third- party payment provider, along with a generic number. We do not store your name, business address, payment details (eg credit card details), but these details may be stored by the third party payment provider handling the transaction.

3. Why we need this data: We store this information as it lets us know when your account will expire. We need your order reference so we can link your order to your account.
4. We are not responsible for any third-party payment provider handling your transaction and you should refer to the third-party payment provider’s privacy policy to see how they use your data.

Cookies:

1. We may obtain information about your general Internet usage through the use of a cookie file that is stored in your browser or on the hard drive of your computer. Cookies are widely used to make websites work, or work more efficiently, as well as to provide information to site owners.

The cookies we use are essential for our Site to enable us to:1. Estimate our audience size and usage pattern.
2. Store information about your preferences, and thus allow us to personalize our Site and provide you with offers targeted to your individual interests;3. Recognize you when you return to our Site.

4. Allow you to use our Site in a way that makes your browsing experience more convenient, for example by allowing you to store details of invoices you have been using as part of our Services. If you register with us or fill in our online forms, we use cookies to remember your details during your current visit, and on any future visit provided the cookie has not been deleted in the meantime.

5. Allow selected third parties (such as Google) to target targeted marketing to you based on your browsing history preferences.

6. You can block cookies by activating your browser settings that allow you to decline the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies), you may not be able to access all or part of our Site. Unless you have adjusted your browser settings to reject cookies, our system will issue cookies as soon as you visit our site.7. Except for essential cookies, all cookies will expire after 2 years. For guidance on when Google’s cookies will expire, please refer to Google’s privacy policy.

Sensitive personal data:

SMEs will not request sensitive personal data, which in accordance with article 3 section VI of the LFPDPPP are: those personal data that affect the most intimate sphere of its owner, or whose improper use may give rise to discrimination or entail a serious risk for this one. In particular, those that may reveal aspects such as racial or ethnic origin, present and future state of health, genetic information, religious, philosophical and moral beliefs, union affiliation, political opinions, sexual preference are considered sensitive.

Transfer of personal data:

We inform you that your personal data is shared inside and outside the country with the following companies:

CRiskCo, Inc.

Pymes Capital, Inc.

This transfer is made based on section IV of article 37 of the Law on Protection of Personal Data Held by Individuals, since the aforementioned companies are holding companies of the same group, or subsidiary or affiliated companies under the common control of the person in charge.

PYMES will not sell, assign, or transfer your personal data to third parties outside the company, without your prior consent. PYMES may transfer any data that is necessary to fulfill its obligations with the Client for the provision of the Services, as well as with the authorities that are duly empowered to request information from our clients.

Likewise, PYMES may share the Client’s personal data with its business partners, including without limitation with point-of-sale terminal providers.

ARCO Rights

The client has the right to know the personal data that we store about him, what we use them for and the conditions of use that we give them (Access). Likewise, it is his right to request the correction of his personal information in case it is outdated, inaccurate or incomplete (Rectification); that we eliminate it from our records or databases when it considers that it is not being used in accordance with the principles, duties and obligations set forth in the regulations (Cancellation); as well as oppose the use of your personal data for specific purposes (Opposition). These rights are known as ARCO rights.

To exercise any of the ARCO rights, the Client must submit the respective request, in the following email [email protected], said request must contain the following requirements: (i) name of the owner of the information, his address and email or other means to communicate the response; (ii) documents that prove his

identity or the corresponding legal representation; (iii) clear and precise description of the personal data with respect to which the corresponding right is exercised; and (iv) any other element that facilitates the location of personal data. The client has the obligation to observe the pertinent requirements for the exercise of their ARCO Rights. Likewise, the right of Rectification may be exercised through the aforementioned email. Upon receipt of any request, we will have 20 business days to respond by the same means.

Contact:

For more information on the exercise of any right established in this Privacy Notice, the client may contact the person in charge of the Personal Data Department of SMEs by email as described below:

Email: [email protected]

The use of tracking technologies on our Internet portal

our websitehttps://pymescapital.com.mx/es/automatically collects information using cookies. Cookie is a small file with information sent by a website and stored in the customer’s browser on your hard drive and helps us improve our Services and your experience based on your preferences.

If the client so decides, they can configure their web browser so that it deletes or does not accept cookies. Please note that if you choose to delete or not accept cookies, this may affect the availability and functionality of our Services.

SMEs may also collect information using web beacons (also known as “pixel tags” and “tracking pixels”). Web beacons are electronic images that can be used by our Services or emails and help us generate cookies, count visits, understand usage and the effectiveness of a campaign, and determine if a message has been opened and act accordingly.

Modifications to the privacy notice

This Privacy Notice may undergo modifications, changes or updates derived from new legal requirements; our own needs for the products or services we offer; of our privacy practices; Changes in our business model, or other causes.

We promise to keep you informed about the changes that this privacy notice may undergo, through our websitehttps://pymescapital.com.mx/en/privacy-policy/.

All modifications to this Privacy Notice will be published on our websitehttps://pymescapital.com.mx/en/privacy-policy/ Therefore, the client has the obligation to review the policies frequently in order to find out about the modifications. The entry into force of the changes suffered by this Privacy Notice will be 10 calendar days from its publication. Within 5 calendar days of their publication, the Client must state if they are not satisfied with them, if so, the provision of Services will be suspended. After this period, it will be considered that the client accepts the modifications to the Privacy Notice.

Acceptance

The use of the Services of PYMES constitutes the tacit manifestation of the will to agree with this Privacy Notice, without excluding the existence of an additional express way of expressing the will.

Authority

The competent authority for the protection of personal data in Mexico is the National Institute for Transparency, Access to Information and Protection of Personal Data (INAI). If the Client considers that their rights are being violated, they can go to the INAI to obtain more information and help in this regard.